Call For Papers
Your Expertise, Our Stage
Ink Dragon: A Major Nation-State Campaign
March 11th @ 5pm CET / 12pm EDT
AI Security Masters E4:
Introducing Cyata - Securing the Agenic AI Era
The Great Exposure Reset
AI Security Masters E3:
AI-Generated Malware
CheckMates Go:
CheckMates Fest
This script lets you enter dst IP and port to show all the hops along the way.
Lab example:
[Expert@CP-GW:0]# ./trace-explain-interactive.sh
Enter destination IP or hostname: 8.8.8.8
Choose protocol:
1) ICMP (recommended when UDP is filtered)
2) TCP SYN (port configurable; good for 80/443 allowed paths)
3) UDP (classic traceroute)
Enter choice number [1]: 3
Enter destination UDP port [33434]: 4434
Max hops (TTL) [30]:
Perform reverse DNS lookups for each hop? (y/n) [y]:
== Starting trace-explain ==
Destination: 8.8.8.8
Protocol: udp
Max TTL: 30
Port: 4434
RDNS: enabled
Default route(s):
default via 172.16.10.1 dev eth0 proto 7
2.3.4.0/29 dev eth1 proto kernel scope link src 2.3.4.5
172.16.10.0/24 dev eth0 proto kernel scope link src 172.16.10.249
172.31.10.0/24 dev eth2 proto kernel scope link src 172.31.10.249
172.31.11.0/24 dev eth2.100 proto kernel scope link src 172.31.11.249
Running: traceroute -n -m 30 -q 1 -p 4434 8.8.8.8
----- Hop 1 -----
raw: 1 172.16.10.1 2.255 ms
ip: 172.16.10.1 ptr: -
role: default gateway (first routed hop)
route: direct dev eth0 src 172.16.10.249
neigh: dev eth0 mac 48:3a:02:96:47:2d state REACHABLE
----- Hop 2 -----
raw: 2 192.168.0.4 2.255 ms
ip: 192.168.0.4 ptr: -
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 3 -----
raw: 3 173.46.3.209 1.637 ms
ip: 173.46.3.209 ptr: unassigned-209.3.46.173.net.blink.ca
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 4 -----
raw: 4 *
ip: -
----- Hop 5 -----
raw: 5 *
ip: -
----- Hop 6 -----
raw: 6 *
ip: -
----- Hop 7 -----
raw: 7 24.156.145.98 8.092 ms
ip: 24.156.145.98 ptr: -
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 8 -----
raw: 8 209.148.230.53 5.392 ms
ip: 209.148.230.53 ptr: 9044-cgw01.mtnk.asr9k.rmgt.net.rogers.com
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 9 -----
raw: 9 69.63.248.69 5.523 ms
ip: 69.63.248.69 ptr: -
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 10 -----
raw: 10 72.14.216.54 4.025 ms
ip: 72.14.216.54 ptr: -
route: via 172.16.10.1 dev eth0 src 172.16.10.249
neigh: (no ARP/NDP entry cached)
----- Hop 11 -----
raw: 11 *
ip: -
----- Hop 12 -----
raw: 12 *
ip: -
----- Hop 13 -----
raw: 13 *
ip: -
----- Hop 14 -----
raw: 14 *
ip: -
----- Hop 15 -----
raw: 15 *
ip: -
----- Hop 16 -----
raw: 16 *
ip: -
----- Hop 17 -----
raw: 17 *
ip: -
----- Hop 18 -----
raw: 18 *
ip: -
----- Hop 19 -----
raw: 19 *
ip: -
----- Hop 20 -----
raw: 20 *
ip: -
----- Hop 21 -----
raw: 21 *
ip: -
----- Hop 22 -----
raw: 22 *
ip: -
----- Hop 23 -----
raw: 23 *
ip: -
----- Hop 24 -----
raw: 24 *
ip: -
----- Hop 25 -----
raw: 25 *
ip: -
----- Hop 26 -----
raw: 26 *
ip: -
----- Hop 27 -----
raw: 27 *
ip: -
----- Hop 28 -----
raw: 28 *
ip: -
----- Hop 29 -----
raw: 29 *
ip: -
----- Hop 30 -----
raw: 30 *
ip: -
== Done ==
[Expert@CP-GW:0]#
This script lets you enter dst IP and port to show all the hops along the way.
Lab example:
[Expert@CP-GW:0]# ./trace-explain-interactive.sh
Enter destination IP or hostname: 8.8.8.8
Choose protocol:
1) ICMP (recommended when UDP is filtered)
2) TCP SYN (port configurable; good for 80/443 allowed paths)
3) UDP (classic traceroute)
Enter choice number [1]: 3
Enter destination UDP port [33434]: 4434
Max hops (TTL) [30]:
Perform reverse DNS lookups for each hop? (y/n) [y]:
== Start
...;
PhoneBoy
I opened up this script to see how you were doing traceroute with tcp and icmp.
Had no idea the standard traceroute had options for both.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY
